General
-
Target
544-83-0x0000000000270000-0x00000000002A0000-memory.dmp
-
Size
192KB
-
MD5
f35eaf3fbcbdadeb8adbbedf9964cbda
-
SHA1
8931a588d76eefa3dcdc660213e7547c3b97aa7b
-
SHA256
84b9b8f33d1f916cbb5907e10dd4f566173356c9ca46f2728cdc090ac8b38fa0
-
SHA512
7326ae81345b4acaf37b8768e8f2ca87373bef17ba724f29a7317f87da788089fe3c3c808296f1aca42c9ca7778ae3549bc8c182a6d2cc5f85fd305ab80f415e
-
SSDEEP
3072:t47FCYO0NJQ5S0xNcIA7qVJeNGy8e8hy:tvd0AEnCVJeNGy
Score
10/10
Malware Config
Extracted
Family
redline
Botnet
drake
C2
83.97.73.131:19071
Attributes
-
auth_value
74ce6ffe4025a2e4027fb727915e7d7c
Signatures
-
RedLine payload 1 IoCs
-
Redline family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
544-83-0x0000000000270000-0x00000000002A0000-memory.dmp
Headers
Sections